Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Learningdigital.com, Inc. Orca HCM - Path Traversal-2
Vulnerability Description
The directory list page parameter of the Orca HCM digital learning platform fails to filter special characters properly. Remote attackers can access the system directory thru Path Traversal with users’ privileges.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
LearningDigital Orca HCM digital learning platform 路径遍历漏洞
Vulnerability Description
LearningDigital Orca HCM digital learning platform是中国一宇数位(LearningDigital)公司的一个数字学习平台。 LearningDigital Orca HCM digital learning platform存在路径遍历漏洞,该漏洞源于平台的目录列表页面参数不能正确过滤特殊字符。远程攻击者可利用该漏洞可以使用用户权限通过路径遍历访问系统目录。
CVSS Information
N/A
Vulnerability Type
N/A